Other ones can't be uploaded, but this one can't be uploaded.

Microsoft has gradually started releasing a new set of Secure Boot certificate updates; after the original certificate, in use since 2011, is expiring in mid-2026, marking a major security update to the Windows system.

.

Secure Boot serves to authenticate the software from the power-up stage, ensuring that only the operating system or certified code can boot up. As the original certificate nears expiration, Microsoft issues a new set of 2023 certificates, replacing it, to prevent over-aging encryption keys from becoming system weaknesses and continuing the platform's security standards.

.

The good news is that most of the new PCs or hardware that have been released since 2024 are already with a 2023 certificate, so no further action is required. This group is hardly affected by the expiration of the 2011 certificate.

.

This update is gradually released through Windows Update on a regular cycle. Ordinary users do little more, just install regular system updates, but some devices may need to receive firmware or BIOS / UEFI updates from additional hardware manufacturers to fully support the new certificate.

.

The point to be aware of is that for Windows 11 users who forcibly open Secure Boot is a system requirement. If this new set of certificates is not installed, it may be vulnerable to future problems, including cases where the machine cannot boot normally, while Windows 10 users who do not have Secure Boot enabled will not be directly affected.

.

But for Windows 10 users who have opened Secure Boot, especially those outside the main support range, consider joining the Extended Security Updates (ESU) program to receive security updates and install a new set of certificates before the expiration deadline to avoid the risk of subsequent problems.

.

Source: Neowin

# IT should know # IT News # Includes IT matters # IT